X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=mod%2Fitem.php;h=504856d7d2d9883618edefa4ac4f8b8157e7c42e;hb=9513f1f1668a33be3fc2b241fe3662e9de42d84b;hp=e60b062bbc8ad004106c92f29d9e12b8283e43e7;hpb=47e9613acde8a6282e3c3717edf6efb7fce47252;p=friendica.git

diff --git a/mod/item.php b/mod/item.php
index e60b062bbc..504856d7d2 100644
--- a/mod/item.php
+++ b/mod/item.php
@@ -1,5 +1,12 @@
 <?php
 
+// This is the POST destination for most all locally posted
+// text stuff. This function handles status, wall-to-wall status, 
+// local comments, and remote coments - that are posted on this site 
+// (as opposed to being delivered in a feed).
+// All of these become an "item" which is our basic unit of 
+// information. 
+
 function item_post(&$a) {
 
 	if((! local_user()) && (! remote_user()))
@@ -7,8 +14,7 @@ function item_post(&$a) {
 
 	require_once('include/security.php');
 
-	$uid = $_SESSION['uid'];
-
+	$uid = local_user();
 
 	$parent = ((x($_POST,'parent')) ? intval($_POST['parent']) : 0);
 
@@ -29,7 +35,7 @@ function item_post(&$a) {
 
 
 	if(! can_write_wall($a,$profile_uid)) {
-		notice("Permission denied." . EOL) ;
+		notice( t('Permission denied.') . EOL) ;
 		return;
 	}
 
@@ -42,36 +48,16 @@ function item_post(&$a) {
 		$user = $r[0];
 	
 
-	$str_group_allow = '';
-	$group_allow = $_POST['group_allow'];
-	if(is_array($group_allow)) {
-		array_walk($group_allow,'sanitise_acl');
-		$str_group_allow = implode('',$group_allow);
-	}
-
-	$str_contact_allow = '';
-	$contact_allow = $_POST['contact_allow'];
-	if(is_array($contact_allow)) {
-		array_walk($contact_allow,'sanitise_acl');
-		$str_contact_allow = implode('',$contact_allow);
-	}
-
-	$str_group_deny = '';
-	$group_deny = $_POST['group_deny'];
-	if(is_array($group_deny)) {
-		array_walk($group_deny,'sanitise_acl');
-		$str_group_deny = implode('',$group_deny);
-	}
-
-	$str_contact_deny = '';
-	$contact_deny = $_POST['contact_deny'];
-	if(is_array($contact_deny)) {
-		array_walk($contact_deny,'sanitise_acl');
-		$str_contact_deny = implode('',$contact_deny);
-	}
+	$str_group_allow   = perms2str($_POST['group_allow']);
+	$str_contact_allow = perms2str($_POST['contact_allow']);
+	$str_group_deny    = perms2str($_POST['group_deny']);
+	$str_contact_deny  = perms2str($_POST['contact_deny']);
 
-	$title = notags(trim($_POST['title']));
-	$body = escape_tags(trim($_POST['body']));
+	$title             = notags(trim($_POST['title']));
+	$body              = escape_tags(trim($_POST['body']));
+	$location          = notags(trim($_POST['location']));
+	$coord             = notags(trim($_POST['coord']));
+	$verb              = notags(trim($_POST['verb']));
 
 	if(! strlen($body)) {
 		notice( t('Empty post discarded.') . EOL );
@@ -116,36 +102,105 @@ function item_post(&$a) {
 
 	$post_type = notags(trim($_POST['type']));
 
-	if($post_type == 'net-comment') {
+	if($post_type === 'net-comment') {
 		if($parent_item !== null) {
-			if($parent_item['type'] == 'remote')
+			if($parent_item['type'] === 'remote') {
 				$post_type = 'remote-comment';
-			else		
+			} 
+			else {		
 				$post_type = 'wall-comment';
+			}
 		}
 	}
 
-	$notify_type = (($parent) ? 'comment-new' : 'wall-new' );
+	$str_tags = '';
+	$inform   = '';
 
-	do {
-		$dups = false;
-		$hash = random_string();
+	$tags = get_tags($body);
 
-		$uri = "urn:X-dfrn:" . $a->get_hostname() . ':' . $profile_uid . ':' . $hash;
 
-		$r = q("SELECT `id` FROM `item` WHERE `uri` = '%s' LIMIT 1",
-			dbesc($uri));
-		if(count($r))
-			$dups = true;
-	} while($dups == true);
+	if(count($tags)) {
+		foreach($tags as $tag) {
+			if(strpos($tag,'#') === 0) {
+				$basetag = str_replace('_',' ',substr($tag,1));
+				$body = str_replace($tag,'#[url=' . $a->get_baseurl() . '/search?search=' . rawurlencode($basetag) . ']' . $basetag . '[/url]',$body);
+				if(strlen($str_tags))
+					$str_tags .= ',';
+				$str_tags .= '#[url=' . $a->get_baseurl() . '/search?search=' . rawurlencode($basetag) . ']' . $basetag . '[/url]';
+				continue;
+			}
+			if(strpos($tag,'@') === 0) {
+				$name = substr($tag,1);
+				if((strpos($name,'@')) || (strpos($name,'http://'))) {
+					$newname = $name;
+					$links = @lrdd($name);
+					if(count($links)) {
+						foreach($links as $link) {
+							if($link['@attributes']['rel'] === 'http://webfinger.net/rel/profile-page')
+                    			$profile = $link['@attributes']['href'];
+							if($link['@attributes']['rel'] === 'salmon') {
+								if(strlen($inform))
+									$inform .= ',';
+                    			$inform .= 'url:' . str_replace(',','%2c',$link['@attributes']['href']);
+							}
+						}
+					}
+				}
+				else {
+					$newname = $name;
+					if(strstr($name,'_')) {
+						$newname = str_replace('_',' ',$name);
+						$r = q("SELECT * FROM `contact` WHERE `name` = '%s' AND `uid` = %d LIMIT 1",
+							dbesc($newname),
+							intval($profile_uid)
+						);
+					}
+					else {
+						$r = q("SELECT * FROM `contact` WHERE `nick` = '%s' AND `uid` = %d LIMIT 1",
+							dbesc($name),
+							intval($profile_uid)
+						);
+					}
+					if(count($r)) {
+						$profile = $r[0]['url'];
+						$newname = $r[0]['name'];
+						if(strlen($inform))
+							$inform .= ',';
+						$inform .= 'cid:' . $r[0]['id'];
+					}
+				}
+				if($profile) {
+					$body = str_replace($name,'[url=' . $profile . ']' . $newname	. '[/url]', $body);
+					$profile = str_replace(',','%2c',$profile);
+					if(strlen($str_tags))
+						$str_tags .= ',';
+					$str_tags .= '@[url=' . $profile . ']' . $newname	. '[/url]';
+				}
+			}
+		}
+	}
+
+	$wall = 0;
+	if($post_type === 'wall' || $post_type === 'wall-comment')
+		$wall = 1;
+
+	if(! strlen($verb))
+		$verb = ACTIVITY_POST ;
+
+	$gravity = (($parent) ? 6 : 0 );
+ 
+	$notify_type = (($parent) ? 'comment-new' : 'wall-new' );
 
+	$uri = item_new_uri($a->get_hostname(),$profile_uid);
 
-	$r = q("INSERT INTO `item` (`uid`,`type`,`contact-id`,`owner-name`,`owner-link`,`owner-avatar`, 
-		`author-name`, `author-link`, `author-avatar`, `created`,
-		`edited`, `uri`, `title`, `body`, `allow_cid`, `allow_gid`, `deny_cid`, `deny_gid`)
-		VALUES( %d, '%s', %d, '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s' )",
+	$r = q("INSERT INTO `item` (`uid`,`type`,`wall`,`gravity`,`contact-id`,`owner-name`,`owner-link`,`owner-avatar`, 
+		`author-name`, `author-link`, `author-avatar`, `created`, `edited`, `changed`, `uri`, `title`, `body`, `location`, `coord`, 
+		`tag`, `inform`, `verb`, `allow_cid`, `allow_gid`, `deny_cid`, `deny_gid`)
+		VALUES( %d, '%s', %d, %d, %d, '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s' )",
 		intval($profile_uid),
 		dbesc($post_type),
+		intval($wall),
+		intval($gravity),
 		intval($contact_id),
 		dbesc($contact_record['name']),
 		dbesc($contact_record['url']),
@@ -153,11 +208,17 @@ function item_post(&$a) {
 		dbesc($author['name']),
 		dbesc($author['url']),
 		dbesc($author['thumb']),
-		datetime_convert(),
-		datetime_convert(),
+		dbesc(datetime_convert()),
+		dbesc(datetime_convert()),
+		dbesc(datetime_convert()),
 		dbesc($uri),
 		dbesc($title),
 		dbesc($body),
+		dbesc($location),
+		dbesc($coord),
+		dbesc($str_tags),
+		dbesc($inform),
+		dbesc($verb),
 		dbesc($str_contact_allow),
 		dbesc($str_group_allow),
 		dbesc($str_contact_deny),
@@ -167,11 +228,13 @@ function item_post(&$a) {
 		dbesc($uri));
 	if(count($r)) {
 		$post_id = $r[0]['id'];
+		logger('mod_item: saved item ' . $post_id);
 
 		if($parent) {
 
 			// This item is the last leaf and gets the comment box, clear any ancestors
-			$r = q("UPDATE `item` SET `last-child` = 0 WHERE `parent` = %d ",
+			$r = q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent` = %d ",
+				dbesc(datetime_convert()),
 				intval($parent)
 			);
 
@@ -187,16 +250,18 @@ function item_post(&$a) {
 				intval($post_id)
 			);
 
+			// Send a notification email to the conversation owner, unless the owner is me and I wrote this item
 			if(($user['notify-flags'] & NOTIFY_COMMENT) && ($contact_record != $author)) {
 				require_once('bbcode.php');
 				$from = $author['name'];
-				$tpl = file_get_contents('view/cmnt_received_eml.tpl');			
+				$tpl = load_view_file('view/cmnt_received_eml.tpl');			
 				$email_tpl = replace_macros($tpl, array(
 					'$sitename' => $a->config['sitename'],
 					'$siteurl' =>  $a->get_baseurl(),
 					'$username' => $user['username'],
 					'$email' => $user['email'],
 					'$from' => $from,
+					'$display' => $a->get_baseurl() . '/display/' . $user['nickname'] . '/' . $post_id,
 					'$body' => strip_tags(bbcode($body))
 				));
 
@@ -207,16 +272,19 @@ function item_post(&$a) {
 		else {
 			$parent = $post_id;
 
+			// let me know if somebody did a wall-to-wall post on my profile
+
 			if(($user['notify-flags'] & NOTIFY_WALL) && ($contact_record != $author)) {
 				require_once('bbcode.php');
 				$from = $author['name'];
-				$tpl = file_get_contents('view/wall_received_eml.tpl');			
+				$tpl = load_view_file('view/wall_received_eml.tpl');			
 				$email_tpl = replace_macros($tpl, array(
 					'$sitename' => $a->config['sitename'],
 					'$siteurl' =>  $a->get_baseurl(),
 					'$username' => $user['username'],
 					'$email' => $user['email'],
 					'$from' => $from,
+					'$display' => $a->get_baseurl() . '/display/' . $user['nickname'] . '/' . $post_id,
 					'$body' => strip_tags(bbcode($body))
 				));
 
@@ -225,22 +293,30 @@ function item_post(&$a) {
 			}
 		}
 
-		$r = q("UPDATE `item` SET `parent` = %d, `parent-uri` = '%s', `last-child` = 1, `visible` = 1
+		$r = q("UPDATE `item` SET `parent` = %d, `parent-uri` = '%s', `changed` = '%s', `last-child` = 1, `visible` = 1
 			WHERE `id` = %d LIMIT 1",
 			intval($parent),
 			dbesc(($parent == $post_id) ? $uri : $parent_item['uri']),
+			dbesc(datetime_convert()),
 			intval($post_id)
 		);
+
 		// photo comments turn the corresponding item visible to the profile wall
+		// This way we don't see every picture in your new photo album posted to your wall at once.
+		// They will show up as people comment on them.
+
 		if(! $parent_item['visible']) {
 			$r = q("UPDATE `item` SET `visible` = 1 WHERE `id` = %d LIMIT 1",
 				intval($parent_item['id'])
 			);
 		}
 	}
-	$url = $a->get_baseurl();
 
-	proc_close(proc_open("php include/notifier.php \"$url\" \"$notify_type\" \"$post_id\" > notify.log &",
+	$php_path = ((strlen($a->config['php_path'])) ? $a->config['php_path'] : 'php');
+
+	logger('mod_item: notifier invoked: ' . "\"$php_path\" \"include/notifier.php\" \"$notify_type\" \"$post_id\" &");
+
+	proc_close(proc_open("\"$php_path\" \"include/notifier.php\" \"$notify_type\" \"$post_id\" &",
 		array(),$foo));
 
 	goaway($a->get_baseurl() . "/" . $_POST['return'] );
@@ -256,7 +332,7 @@ function item_content(&$a) {
 
 	$uid = $_SESSION['uid'];
 
-	if(($a->argc == 3) && ($a->argv[1] == 'drop') && intval($a->argv[2])) {
+	if(($a->argc == 3) && ($a->argv[1] === 'drop') && intval($a->argv[2])) {
 
 		// locate item to be deleted
 
@@ -276,7 +352,8 @@ function item_content(&$a) {
 
 			// delete the item
 
-			$r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s' WHERE `id` = %d LIMIT 1",
+			$r = q("UPDATE `item` SET `deleted` = 1, `body` = '', `edited` = '%s', `changed` = '%s' WHERE `id` = %d LIMIT 1",
+				dbesc(datetime_convert()),
 				dbesc(datetime_convert()),
 				intval($item['id'])
 			);
@@ -297,22 +374,40 @@ function item_content(&$a) {
 			// If it's the parent of a comment thread, kill all the kids
 
 			if($item['uri'] == $item['parent-uri']) {
-				$r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s' 
+				$r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s', `body` = '' 
 					WHERE `parent-uri` = '%s' AND `uid` = %d ",
 					dbesc(datetime_convert()),
+					dbesc(datetime_convert()),
 					dbesc($item['parent-uri']),
 					intval($item['uid'])
 				);
 				// ignore the result
 			}
-
-			$url = $a->get_baseurl();
+			else {
+				// ensure that last-child is set in case the comment that had it just got wiped.
+				q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d ",
+					dbesc(datetime_convert()),
+					dbesc($item['parent-uri']),
+					intval($item['uid'])
+				);
+				// who is the last child now? 
+				$r = q("SELECT `id` FROM `item` WHERE `parent-uri` = '%s' AND `type` != 'activity' AND `deleted` = 0 AND `uid` = %d ORDER BY `edited` DESC LIMIT 1",
+					dbesc($item['parent-uri']),
+					intval($item['uid'])
+				);
+				if(count($r)) {
+					q("UPDATE `item` SET `last-child` = 1 WHERE `id` = %d LIMIT 1",
+						intval($r[0]['id'])
+					);
+				}	
+			}
 			$drop_id = intval($item['id']);
-
+			$php_path = ((strlen($a->config['php_path'])) ? $a->config['php_path'] : 'php');
+			
 			// send the notification upstream/downstream as the case may be
 
-			proc_close(proc_open("php include/notifier.php \"$url\" \"drop\" \"$drop_id\" > notify.log &",
-				array(),$foo));
+			proc_close(proc_open("\"$php_path\" \"include/notifier.php\" \"drop\" \"$drop_id\" &",
+				array(), $foo));
 
 			goaway($a->get_baseurl() . '/' . $_SESSION['return_url']);
 			return; //NOTREACHED
@@ -320,7 +415,7 @@ function item_content(&$a) {
 		else {
 			notice( t('Permission denied.') . EOL);
 			goaway($a->get_baseurl() . '/' . $_SESSION['return_url']);
-			return; //NOTREACHED
+			//NOTREACHED
 		}
 	}
 }
\ No newline at end of file